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Abstract - Vampire attacks are not specific to any protocol, but rather rely on the properties of cla^Sfc of 



routing protocols. A single Vampire can increase network-wide energy usage by a factor of O (ftfawkere N 
is the number of network nodes. This paper uses two attacks on stateless protocol in whicja^ia^carousel 
attack is an adversary and sends a packet with a route composed as a series of loops, surfi\£iR: the same 
node appears in the route many a times, and the Stretch attack where a malicious rVde constructs 
artificially long source routes, causing packets to traverse a larger than optimal ireiml*er of nodes. The 
vampire attacks are very difficult to detect and prevent. 

Keywords - Ad-hoc Networks, Carousel attack, Stretch attack and malicious df^^ery attack. 




l. Introduction 

Wireless ad-hoc network is needed to explore in sensing ancLuS|jv^ive computing. The security work 
focuses on denial of communication at the routing or medium im^s control levels. The "Vampire" attacks 
are not specific to any specific protocol, but rather rely on th\pr#>perties of many popular classes of routing 
protocols. Vampire attack is the composition and transmj^&& of a message that causes more energy to be 
consumed by the network than if an honest node itoramits a message of identical size to the same 
destination, although using different packet headeily^'Sl the protocols are devastating, difficult to detect 
and easy to carry out using as few as one malicio^^ftider sending only protocol compliant messages. The 
proposed system discuss the methods to dety^nd mitigate these types of attacks, including a new proof- 
of-concept protocol that provably bounds^^o^mage caused by Vampires during the packet forwarding 
phase. Vampire attacks are not protafflCgjDecific, in that they do not rely on design properties or 
implementation faults of particul^^C^M? protocols, but rather exploit general properties of protocol 
classes such as link-state, distance -t^t^r, source routing and geographic and beacon routing. Neither do 
these attacks rely on flooding ti^ietwork with large amounts of data, but rather try to transmit as little 
data as possible to achieve tbgPigest energy drain, preventing a rate limiting solution. Since Vampires use 
protocol-compliant mess^^ftjrese attacks are very difficult to detect and prevent. 

This paper makes thrf^Sj^imary contributions. First, we thoroughly evaluate the vulnerabilities of existing 
protocols to roitfii]^i|frf battery depletion attacks. We observe that security measures to prevent Vampire 
attacks are orti^jroWal to those used to protect routing infrastructure, and so existing secure routing 
protocols suaNL^SAODV, and SEAD do not protect against Vampire attacks. 




DOS att^fc^represents in wired networks are frequently characterized by amplification an adversary can 
aipp4iVt}jb resources it spends on the attack the cumulative energy of an entire network, amplification 
af^cl^ are always possible, given that an adversary can compose and send messages which are processed by 
eacfldiode along the message path. Vampire attack has the composition and transmission of a message that 
causes more energy to be consumed by the network than if an honest node transmitted a message of 
identical size to the same destination, although using different packet headers. 

1.2 Protocols and Assumptions 

All routing protocols employ at least one topology discovery period, since ad-hoc deployment implies no 
prior position knowledge, a single Vampire may attack every network node simultaneously, meaning that 
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continuous recharging does not help unless Vampires are more resource-constrained than honest nodes 
Vampire attacks may be weakened by using groups of nodes with staggered cycles: only active-duty nodes 
are vulnerable while the Vampire is active; nodes are safe while the Vampire sleeps this defence is only 
effective when duty cycle groups outnumber Vampires, since it only takes one Vampire per group to carry 
out the attack. 



1.3 Overview 

In the first attack that is Carousal attack an adversary composes packets with purposely introduced rolling 
loops it targets source routing protocols by exploiting the limited verification of message hea1^|| at 
forwarding nodes, allowing a single packet to repeatedly traverse the same set of nodes. In Jfee second 
attack that is stretch attack an adversary constructs artificially long routes, potentially traversi 
in the network. The assumption has been made that only messages originated by advema^ 
maliciously-composed routes. 



node 
may have 




Fig (a) An honest route would exit the loop Fig (b) 
to sink. Malicious code is dashed. Above figure 
routing: carousel attack Fig (a) and stretch attack^ 



existing system are ] 
various dos attacks. 




>t^^ 



route is dotted while immediately from Node E 
Malicious route construction attacks on source 



Related Work 



Existing work on secure routing adjtfffcts^ro ensure that adversaries cannot cause path discovery to return 
an invalid network path, but Vaiypire\ab not disrupt or alter discovered paths, instead using existing valid 
network paths and protocol rorkpliant messages. Protocols that maximize power efficiency are also 
inappropriate, since they.: reJOorreooperative node behavior and cannot optimize out malicious action. 
[1,2,3] the most permanej^^Hfrfal of service attack is to entirely deplete nodes batteries. Disadvantages of 



ges, due to environmental disasters, loss in the information, lost productivity 
level is low, they do not address attacks that affect long-term availability. 

Energy usage with various attacks 




Fraction of node energy consumed 



Fig (c) Node energy distribution under various attack scenarios. 
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3. Attacks on Stateless Protocol 

The carousel and stretch attacks (Fig (a) & Fig (b)) in a randomly-generated 30-node topology and a single 
randomly-selected malicious DSR agent, using the ns-2 network simulator. Malicious nodes are not driving 
down the cumulative energy of the network purely by their own use of energy. 
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(a) Honest scenario: node o sends a single messa§^^^i#de 19 




(b) Carousel attack (malicious ™de 07: the nodes traversed by the packet are the same as in (a), but the 
loop over all forwarding nodesto^hly triples the route length (the packet traverses the loop more than 
once). Note the drasticairjtirfcgtsed energy consumption among the forwarding nodes. 
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(c) Stretch attack (malicious node o): the route diverts from the optimal path between source and 
destination, roughly doubling in length. Note that while the per-node energy consumption increase is not 
as drastic as in (b), the region of increased energy consumption is larger. Overall energy consumption is 
greater than in the carousel attack but spread more evenly over more network nodes. 



ICIEMS 2014 



ISBN : 978-81-925233-3-0 



www.edlib.asdf.res.in / www.iciems.in 



Proceedings of The Intl. Conf. on Information, Engineering, Management and Security 2014 [ICIEMS 2014] 



254 



3.1 Mitigation methods 

The carousel attack can be prevented when a loop is detected, the source route could be corrected and the 
packet sent on, but one of the attractive features of source routing is that the route can itself be signed by 
the source. The stretch attack is more challenging to prevent. Its success rests on the forwarding node not 
checking for optimality of the route. 



4. Attacks on Stateful Protocols 

Routes in link-state and distance-vector networks are built dynamically from many independent fonflaOrtg 
decisions, so adversaries have limited power to affect packet forwarding, making these protocols isnm^Jhe to 
carousel and stretch attacks. Vampires have little control over packet progress when foiwardjjjjj^ecisions 
are made independently by each node, but they can still waste energy by restarting a packefrwvfrious parts 
of the network. In Malicious discovery attack the attack on all previously-mentioned rating protocols 
(including stateful and stateless) is spurious route discovery. ^ 

5. Provable Security Against Vampire Attacl£^ 

The non backtracking property is satisfied for a given packet if and onlyWiere exists routes for its 
transmission. This means that the adversary cannot perform carou#eStol\ttetch attacks, no node may 
unilaterally specify a suboptimal path through the network. ^^^^^ 
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6. Conclusion & Future Work 

Distance Vector is-4^^!vireless sensor network routing protocol that provably bounds damage from 
Vampire attacl^Hi^lerifving that packets consistently make progress toward their destinations. The 
detection an^/?^3klance of formation of loops help this protocol detect and avoid vampire attacks. 
Derivation^l^Smage bounds and defenses for topology discovery, as well as handling mobile networks, is 
left for fu%yJPwork. 
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